<?xml version="1.0" encoding="ISO-8859-1"?>

<web-app xmlns="http://java.sun.com/xml/ns/javaee"
   xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
   xsi:schemaLocation="http://java.sun.com/xml/ns/javaee http://java.sun.com/xml/ns/javaee/web-app_2_5.xsd"
   version="2.5">

  <description>Waffle Tomcat Authenticator Demo</description>
  <display-name>Waffle Demo</display-name>

  <security-constraint>
    <display-name>Waffle Security Constraint</display-name>
    <web-resource-collection>
      <web-resource-name>Protected Area</web-resource-name>
      <url-pattern>/*</url-pattern>
      <http-method>DELETE</http-method>
      <http-method>GET</http-method>
      <http-method>POST</http-method>
      <http-method>PUT</http-method>
    </web-resource-collection>
    <auth-constraint>
      <role-name>Everyone</role-name>
    </auth-constraint>
  </security-constraint>
  <security-constraint>
    <display-name>Login Page</display-name>
    <web-resource-collection>
      <web-resource-name>Unprotected Login Page</web-resource-name>
      <url-pattern>/login.jsp</url-pattern>
    </web-resource-collection>
  </security-constraint>
  
  <error-page>
   <error-code>401</error-code>
   <location>/401.html</location>
  </error-page>
  
  <login-config>
     <form-login-config>
		<form-login-page>/login.jsp</form-login-page>  
		<form-error-page>/error.html</form-error-page>  
	 </form-login-config>
  </login-config>
  
</web-app>
